Vulnerabilities > CVE-2004-0171 - Remote Denial Of Service vulnerability in BSD Out Of Sequence Packets

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
PARTIAL
network
low complexity
freebsd
openbsd
nessus
NVD
Published: 2004-03-15
Updated: 2017-10-10

Summary

FreeBSD 5.1 and earlier, and Mac OS X before 10.3.4, allows remote attackers to cause a denial of service (resource exhaustion of memory buffers and system crash) via a large number of out-of-sequence TCP packets, which prevents the operating system from creating new connections.

Vulnerable Configurations

Part Description Count
OS
Freebsd
7
OS
Openbsd
2

Nessus

  • NASL familyFreeBSD Local Security Checks
    NASL idFREEBSD_OUTOFSEQ_TCP_PACKETS_DOS.NASL
    descriptionThe remote host is running a version of the FreeBSD kernel which may be vulnerable to a remote denial of service attack when processing many out of sequence TCP packets.
    last seen2020-06-01
    modified2020-06-02
    plugin id12589
    published2004-07-06
    reporterThis script is Copyright (C) 2004-2011 Tenable Network Security, Inc.
    sourcehttps://www.tenable.com/plugins/nessus/12589
    titleFreeBSD : SA-04:04.tcp
  • NASL familyMacOS X Local Security Checks
    NASL idMACOSX_MULTIPLE_VULNS.NASL
    descriptionThe remote host is running a version of Mac OS X that is older than 10.3.4. Such versions contain several flaws that may allow an attacker to execute arbitrary commands on the remote system with root privileges.
    last seen2020-06-01
    modified2020-06-02
    plugin id12257
    published2004-06-01
    reporterThis script is Copyright (C) 2004-2018 Tenable Network Security, Inc.
    sourcehttps://www.tenable.com/plugins/nessus/12257
    titleMac OS X < 10.3.4 Multiple Vulnerabilities

References